[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.86' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 489.454596] XFS (loop0): Mounting V4 Filesystem [ 489.461707] XFS (loop0): Log size 256 blocks too small, minimum size is 2880 blocks [ 489.469527] XFS (loop0): Log size out of supported range. [ 489.475791] XFS (loop0): Continuing onwards, but if log hangs are experienced then please report this message in the bug report. [ 489.514818] XFS (loop0): Starting recovery (logdev: internal) [ 717.634190] INFO: task syz-executor367:8113 blocked for more than 140 seconds. [ 717.641625] Not tainted 4.19.211-syzkaller #0 [ 717.647378] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 717.655473] syz-executor367 D26288 8113 8112 0x00000004 [ 717.661120] Call Trace: [ 717.663887] __schedule+0x887/0x2040 [ 717.667662] ? io_schedule_timeout+0x140/0x140 [ 717.672259] ? lock_downgrade+0x720/0x720 [ 717.676531] schedule+0x8d/0x1b0 [ 717.679905] xlog_grant_head_wait+0x13b/0xcd0 [ 717.684463] xlog_grant_head_check+0x3c8/0x420 [ 717.689048] ? xlog_grant_head_wait+0xcd0/0xcd0 [ 717.693703] xfs_log_reserve+0x347/0xa70 [ 717.697826] ? xlog_ticket_alloc+0x440/0x440 [ 717.702236] ? xfs_mod_fdblocks+0xed/0x420 [ 717.706531] xfs_trans_reserve+0x63a/0x9c0 [ 717.710771] xfs_trans_alloc+0x2f7/0x700 [ 717.714898] xlog_recover_process_intents+0x274/0x430 [ 717.720083] ? xlog_recover_process_bui+0x90/0x90 [ 717.724970] ? do_raw_spin_unlock+0x171/0x230 [ 717.729482] xlog_recover_finish+0x5f/0x230 [ 717.733787] xfs_log_mount_finish+0x135/0x450 [ 717.738342] xfs_mountfs+0x1032/0x1bf0 [ 717.742236] ? xfs_default_resblks+0x60/0x60 [ 717.746772] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 717.751789] ? work_on_cpu_safe+0x90/0x90 [ 717.755988] ? __lockdep_init_map+0x100/0x5a0 [ 717.760485] ? xfs_mru_cache_create+0x473/0x580 [ 717.765187] ? xfs_filestream_get_parent+0xd0/0xd0 [ 717.770114] xfs_fs_fill_super+0xd0e/0x1540 [ 717.774490] mount_bdev+0x2fc/0x3b0 [ 717.778105] ? xfs_test_remount_options+0x90/0x90 [ 717.782929] mount_fs+0xa3/0x310 [ 717.786333] vfs_kern_mount.part.0+0x68/0x470 [ 717.790832] do_mount+0x115c/0x2f50 [ 717.794513] ? lock_acquire+0x170/0x3c0 [ 717.798480] ? check_preemption_disabled+0x41/0x280 [ 717.803476] ? copy_mount_string+0x40/0x40 [ 717.807747] ? copy_mount_options+0x59/0x380 [ 717.812370] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 717.817623] ? kmem_cache_alloc_trace+0x323/0x380 [ 717.822464] ? copy_mount_options+0x26f/0x380 [ 717.827001] ksys_mount+0xcf/0x130 [ 717.830538] __x64_sys_mount+0xba/0x150 [ 717.834648] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 717.839224] do_syscall_64+0xf9/0x620 [ 717.843096] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 717.848331] RIP: 0033:0x7fad732525ea [ 717.852046] Code: Bad RIP value. [ 717.855457] RSP: 002b:00007ffe6ccf5e78 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 717.863370] RAX: ffffffffffffffda RBX: 00646975756f6e2c RCX: 00007fad732525ea [ 717.870679] RDX: 000000002000bb00 RSI: 0000000020000040 RDI: 00007ffe6ccf5e80 [ 717.878003] RBP: 00007ffe6ccf5e80 R08: 00007ffe6ccf5ec0 R09: 0000000000000002 [ 717.885413] R10: 0000000000000003 R11: 0000000000000206 R12: 0000000000000004 [ 717.892677] R13: 0000555556a9b2c0 R14: 00007ffe6ccf5ec0 R15: 0000000000000000 [ 717.900274] [ 717.900274] Showing all locks held in the system: [ 717.906742] 1 lock held by khungtaskd/1570: [ 717.911046] #0: 00000000a0fa3fbe (rcu_read_lock){....}, at: debug_show_all_locks+0x53/0x265 [ 717.919724] 2 locks held by syz-executor367/8113: [ 717.924606] #0: 00000000b1151a2a (&type->s_umount_key#46/1){+.+.}, at: sget_userns+0x20b/0xcd0 [ 717.933449] #1: 000000008c7c4855 (sb_internal#2){.+.+}, at: xfs_trans_alloc+0x4fc/0x700 [ 717.941737] [ 717.943356] ============================================= [ 717.943356] [ 717.950427] NMI backtrace for cpu 0 [ 717.954113] CPU: 0 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 [ 717.961547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 717.971745] Call Trace: [ 717.974318] dump_stack+0x1fc/0x2ef [ 717.977931] nmi_cpu_backtrace.cold+0x63/0xa2 [ 717.982438] ? lapic_can_unplug_cpu+0x80/0x80 [ 717.987019] nmi_trigger_cpumask_backtrace+0x1a6/0x1f0 [ 717.992275] watchdog+0x991/0xe60 [ 717.995727] ? reset_hung_task_detector+0x30/0x30 [ 718.000561] kthread+0x33f/0x460 [ 718.003921] ? kthread_park+0x180/0x180 [ 718.007883] ret_from_fork+0x24/0x30 [ 718.011674] Sending NMI from CPU 0 to CPUs 1: [ 718.016774] NMI backtrace for cpu 1 [ 718.016781] CPU: 1 PID: 4695 Comm: systemd-journal Not tainted 4.19.211-syzkaller #0 [ 718.016787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 718.016791] RIP: 0010:get_reg+0x14/0x1f0 [ 718.016801] Code: 6e 00 eb de 66 90 48 8b 07 48 89 06 c3 66 0f 1f 84 00 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 41 55 49 89 d5 c1 ee 03 41 54 <55> 53 48 89 fb 48 83 c7 50 48 83 ec 68 48 c7 44 24 08 b3 8a b5 41 [ 718.016806] RSP: 0018:ffff8880a080f990 EFLAGS: 00000202 [ 718.016813] RAX: dffffc0000000000 RBX: 1ffff11014101f3e RCX: ffffffff8c11b3f7 [ 718.016818] RDX: ffff8880a080fa30 RSI: 0000000000000004 RDI: ffff8880a080fad8 [ 718.016823] RBP: 0000000000000001 R08: ffffffff8c11b3f6 R09: ffffffff8c11b3d4 [ 718.016828] R10: ffff8880a080fb37 R11: 0000000000074071 R12: ffff8880a080ff58 [ 718.016832] R13: ffff8880a080fa30 R14: ffff8880a080fad8 R15: ffffffff8c11b3f2 [ 718.016838] FS: 00007f6acf4148c0(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 718.016842] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 718.016847] CR2: 00007f6acc7e5000 CR3: 00000000a0e6b000 CR4: 00000000003406e0 [ 718.016852] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 718.016857] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 718.016860] Call Trace: [ 718.016863] unwind_next_frame+0xdfc/0x1400 [ 718.016867] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.016871] ? deref_stack_reg+0x1d0/0x1d0 [ 718.016874] ? __unwind_start+0x5b8/0x960 [ 718.016878] ? should_fail+0x142/0x7b0 [ 718.016881] ? unwind_next_frame+0x1400/0x1400 [ 718.016885] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.016889] __save_stack_trace+0x9f/0x190 [ 718.016892] ? __lock_acquire+0x6de/0x3ff0 [ 718.016895] kasan_kmalloc+0xeb/0x160 [ 718.016899] ? kmem_cache_alloc+0x110/0x370 [ 718.016902] ? getname_flags+0xce/0x590 [ 718.016906] ? user_path_at_empty+0x2a/0x50 [ 718.016909] ? do_faccessat+0x248/0x7a0 [ 718.016913] ? do_syscall_64+0xf9/0x620 [ 718.016917] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.016921] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 718.016924] ? kmem_cache_alloc+0x122/0x370 [ 718.016927] ? prepare_creds+0x39/0x510 [ 718.016931] ? do_faccessat+0x94/0x7a0 [ 718.016934] ? __lock_acquire+0x6de/0x3ff0 [ 718.016938] ? mark_held_locks+0xf0/0xf0 [ 718.016941] ? cache_alloc_refill+0x2f8/0x340 [ 718.016945] ? lock_downgrade+0x720/0x720 [ 718.016948] ? do_raw_spin_lock+0xcb/0x220 [ 718.016952] ? do_raw_spin_unlock+0x171/0x230 [ 718.016955] ? _raw_spin_unlock+0x29/0x40 [ 718.016959] ? cache_alloc_refill+0x2f8/0x340 [ 718.016962] ? kmem_cache_alloc+0x2b1/0x370 [ 718.016966] kmem_cache_alloc+0x110/0x370 [ 718.016969] getname_flags+0xce/0x590 [ 718.016973] user_path_at_empty+0x2a/0x50 [ 718.016976] do_faccessat+0x248/0x7a0 [ 718.016980] ? __ia32_sys_fallocate+0x140/0x140 [ 718.016984] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 718.016988] ? trace_hardirqs_off_caller+0x6e/0x210 [ 718.016991] ? do_syscall_64+0x21/0x620 [ 718.016994] do_syscall_64+0xf9/0x620 [ 718.016998] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 718.017001] RIP: 0033:0x7f6ace6cf9c7 [ 718.017012] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48 [ 718.017016] RSP: 002b:00007ffe2b6e6fd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000015 [ 718.017024] RAX: ffffffffffffffda RBX: 00007ffe2b6ea000 RCX: 00007f6ace6cf9c7 [ 718.017029] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055ebbf4619a3 [ 718.017034] RBP: 00007ffe2b6e7120 R08: 000055ebbf4573e5 R09: 0000000000000018 [ 718.017039] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000 [ 718.017044] R13: 0000000000000000 R14: 000055ebc0bda8a0 R15: 00007ffe2b6e7610 [ 718.017213] Kernel panic - not syncing: hung_task: blocked tasks [ 718.383838] CPU: 0 PID: 1570 Comm: khungtaskd Not tainted 4.19.211-syzkaller #0 [ 718.391262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 718.400594] Call Trace: [ 718.403167] dump_stack+0x1fc/0x2ef [ 718.406781] panic+0x26a/0x50e [ 718.409954] ? __warn_printk+0xf3/0xf3 [ 718.413819] ? _raw_spin_unlock_irqrestore+0x79/0xe0 [ 718.418907] ? cpumask_next+0x3c/0x40 [ 718.422687] ? printk_safe_flush+0xd6/0x120 [ 718.426993] ? watchdog+0x991/0xe60 [ 718.430597] ? nmi_trigger_cpumask_backtrace+0x15e/0x1f0 [ 718.436028] watchdog+0x9a2/0xe60 [ 718.439467] ? reset_hung_task_detector+0x30/0x30 [ 718.444292] kthread+0x33f/0x460 [ 718.447643] ? kthread_park+0x180/0x180 [ 718.451602] ret_from_fork+0x24/0x30 [ 718.455483] Kernel Offset: disabled [ 718.459188] Rebooting in 86400 seconds..